$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft File: U05nXomsmsMC9TCid1KM-Bo8UwY.mft (raw, json) Hash identifier: Nk2b9e3AcXiM82iHDchkN1m7JCjR56nBNeDxTCM5fhE= Subject key identifier: 2F:A8:C8:A3:A0:D0:1E:D8:9A:E8:95:7D:17:75:DE:FD:0F:9C:9B:D3 Authority key identifier: 53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 Certificate issuer: /CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Certificate serial: 05C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft Manifest number: 05AF Signing time: Sun 20 Jul 2025 23:24:42 +0000 Manifest this update: Sun 20 Jul 2025 23:24:42 +0000 Manifest next update: Sun 27 Jul 2025 23:24:42 +0000 Files and hashes: 1: U05nXomsmsMC9TCid1KM-Bo8UwY.crl (hash: 7tJco+hpbWagYAWLb7WO0g36u1h8B60l7PgE3AMDYvA=) 2: 5C0006B4E1B711EEA6D7F740C4F9AE02.roa (hash: 4jfL7SNWxDFOPvyEexB/Au04m937KqyBQLuHPsEG/BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:24:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1474 (0x5c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1EB, serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Validity Not Before: Jul 20 23:24:42 2025 GMT Not After : Jul 27 23:24:42 2025 GMT Subject: CN=687d7aba-2330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:59:44:18:d9:74:3b:f2:e2:0f:61:59:71:9e: 6c:9c:2a:8d:b8:8f:66:d5:3f:21:ca:56:e3:c2:b1: 80:1f:ea:96:d9:50:ce:c8:06:a0:9a:1e:5f:bb:80: 42:7e:20:0f:a7:9a:14:ef:bd:c0:1e:c1:1b:ec:a5: 4a:a8:45:33:07:3f:7b:98:bc:57:fe:ee:7a:9e:25: b5:14:b2:0c:a8:4a:63:12:cd:76:51:e1:b4:02:ec: 50:b7:8a:53:df:3d:f0:c5:e3:9b:97:f7:86:03:7c: f5:ab:06:a7:f7:03:57:ae:c3:78:2a:56:49:52:bc: 33:2e:52:04:9d:c4:5c:8a:66:2e:c9:03:f8:15:b3: 66:14:38:57:fc:97:72:a9:eb:40:c8:fe:56:ff:5f: 9a:aa:d0:13:7e:71:1d:17:ec:6e:0e:c3:17:9a:d1: 7c:76:8a:54:c0:5e:53:65:7e:ba:5d:6a:7a:8f:2c: 63:2e:b4:bb:fe:2d:d4:6c:10:0c:7a:7f:b2:8c:00: ef:0b:eb:1f:bf:6e:c9:6f:83:e9:b8:27:29:93:9b: 0e:23:24:41:97:e2:04:1b:65:46:4a:9e:79:1f:ec: d8:03:43:55:25:e2:3e:5d:ce:b3:c7:62:94:35:3b: a7:62:83:99:56:c9:3e:12:91:c6:49:93:38:7f:48: d9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:A8:C8:A3:A0:D0:1E:D8:9A:E8:95:7D:17:75:DE:FD:0F:9C:9B:D3 X509v3 Authority Key Identifier: keyid:53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:a2:e0:a5:66:bd:c4:2d:4f:76:67:03:cd:5d:e5:ae:b2:9d: 89:2e:d9:e0:30:a5:9f:86:f4:ea:01:8a:f0:16:4a:9a:88:63: 3a:8a:89:51:7f:58:ae:40:c3:6d:1f:7f:7a:81:31:c2:e1:c3: 7f:26:31:11:ba:2a:99:c0:51:2f:c9:ed:2e:55:19:e6:96:6c: de:53:4e:8b:4b:2d:77:4c:90:8a:19:a3:8c:75:8c:7c:91:8e: 8c:c2:d1:75:1f:0e:74:40:58:37:9a:32:5b:a3:73:1b:63:69: f1:8c:9f:b2:39:46:4d:21:f8:87:45:07:fb:56:51:5b:e3:5a: b5:3b:cf:c3:0b:2b:8d:2a:9c:63:3e:c5:49:85:c4:07:91:85: 07:b5:dc:cb:bc:3f:cb:43:70:72:0d:84:6d:f6:b1:20:c1:a4: 80:35:df:0e:86:03:42:28:6a:a8:17:be:b8:62:dc:2d:08:69: 83:2a:71:58:cb:46:02:98:f3:f8:f9:83:ca:72:a5:99:fc:85: 16:88:f3:7f:08:da:44:3c:28:59:ce:47:cc:a3:e3:3a:27:7e: c6:8a:aa:e3:1b:4c:db:55:ac:44:dd:7f:80:46:85:4c:78:38: 80:d3:c5:b3:34:08:53:de:6c:55:62:41:12:37:f3:89:5d:34: 0c:ab:48:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRUIxMTAvBgNVBAUTKDUzNEU2NzVFODlBQzlBQzMwMkY1MzBBMjc3NTI4Q0Y4 MUEzQzUzMDYwHhcNMjUwNzIwMjMyNDQyWhcNMjUwNzI3MjMyNDQyWjAYMRYwFAYD VQQDEw02ODdkN2FiYS0yMzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtllEGNl0O/LiD2FZcZ5snCqNuI9m1T8hylbjwrGAH+qW2VDOyAagmh5fu4BC fiAPp5oU773AHsEb7KVKqEUzBz97mLxX/u56niW1FLIMqEpjEs12UeG0AuxQt4pT 3z3wxeObl/eGA3z1qwan9wNXrsN4KlZJUrwzLlIEncRcimYuyQP4FbNmFDhX/Jdy qetAyP5W/1+aqtATfnEdF+xuDsMXmtF8dopUwF5TZX66XWp6jyxjLrS7/i3UbBAM en+yjADvC+sfv27Jb4PpuCcpk5sOIyRBl+IEG2VGSp55H+zYA0NVJeI+Xc6zx2KU NTunYoOZVsk+EpHGSZM4f0jZnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+oyKOg 0B7YmuiVfRd13v0PnJvTMB8GA1UdIwQYMBaAFFNOZ16JrJrDAvUwondSjPgaPFMG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFQi9BQzM4NEFBNkRE ODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21zTUM5VENpZDFLTS1CbzhV d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UwNW5Yb21zbXNNQzlUQ2lkMUtNLUJvOFV3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFQi9BQzM4NEFBNkREODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21z TUM5VENpZDFLTS1CbzhVd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATouClZr3ELU92ZwPNXeWusp2JLtngMKWfhvTqAYrwFkqaiGM6iolR f1iuQMNtH396gTHC4cN/JjERuiqZwFEvye0uVRnmlmzeU06LSy13TJCKGaOMdYx8 kY6MwtF1Hw50QFg3mjJbo3MbY2nxjJ+yOUZNIfiHRQf7VlFb41q1O8/DCyuNKpxj PsVJhcQHkYUHtdzLvD/LQ3ByDYRt9rEgwaSANd8OhgNCKGqoF764YtwtCGmDKnFY y0YCmPP4+YPKcqWZ/IUWiPN/CNpEPChZzkfMo+M6J37GiqrjG0zbVaxE3X+ARoVM eDiA08WzNAhT3mxVYkESN/OJXTQMq0jf -----END CERTIFICATE-----Generated at Mon Jul 21 09:09:47 2025 by rpki-client